How can I use the Knox SSO service without an Active Directory Password?

Article ID: 115012707888

| Last updated:

September 18, 2017 18:09

[Environment]

Knox Workspace,

Knox version: 2.4 and newer

[Summary]

When the default lock type for the Knox Workspcae container is used, the user has to enter their AD credentials in SSO authenticator once inside Knox container.

[Cause]

The regular default lock type for the Knox container cannot be used with SSO authentication.

[Resolution]

In order to use only one password for the Knox container and SSO service you have to:1. Install Samsung authenticator for Kerberos on the device.2. Create a Knox container and choose “Enterprise ID” as a lock type (there is no possibility to change lock type to “Enterprise ID” once the container is created)3. Enter your AD credentials and other required information

With above settings, you will be able to use SSO service without need to enter your AD password again. The AD password will be required only to unlock Knox Container.